Detections
Analytics
CVE-2011-0057critical
Description
Use-after-free vulnerability in the Web Workers implementation in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, allows remote attackers to execute arbitrary code via vectors related to a JavaScript Worker and garbage collection.
References
http://downloads.avaya.com/css/P8/documents/100133195
https://bugzilla.mozilla.org/show_bug.cgi?id=626631
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14200
http://www.mandriva.com/security/advisories?name=MDVSA-2011:041
http://www.mozilla.org/security/announce/2011/mfsa2011-06.html
Details
Published: 2011-03-02
Risk Information
CVSS v2
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Severity: Critical